Re: Version 1.4 doesnt' generate the same XML as V1.3: A default namespace is used for XMLSIG and this causes problem!

Thu, 13 Jul 2006 04:17:36 -0700 

Hi Hess,

I was not aware of the change. But from performance point of view it
makes sense.
I have see in my testing that deciding what to write in the signature
elements takes a lot of time.

The problem is how to make the behaviour configurable and get no
performance hit because of it.

Anyway try with Constants.setSignatureSpecNSprefix("ds").
Pleas tell us if it helps you.

Regards,
Raul


On 7/13/06, Hess Yvan <[EMAIL PROTECTED]> wrote:



Hi,

Due to a problem in XML security library version 1.3 that was not thread
safe, I got the version xmlsec-1.4.Beta0.jar. Doing some test I detected
that the generated XML encryption block of XML encrypted document is NOT THE
SAME in version 1.4 and in the version 1.3. Version 1.4 sets a DEFAULT
namespace for xmldsig and for example the KeyInfo element is written as
<KeyInfo> instead of <ds:KeyInfo> as before. The fact that a default
namespace is used causes problems in my application. Please can you help me
to solve this problem and give me some solution to solve it.

Thanks in advance

Regards Yvan Hess

VERSION 1.3:

   <edoc:EncryptionBlock id="Revision-1-Encryption-1"
xmlns:ds="http://www.w3.org/2000/09/xmldsig#";
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#";>
      <xenc:EncryptedKey>
         <xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/>
         <ds:KeyInfo>
            <ds:KeyName>H5DEMO-ENC</ds:KeyName>
         </ds:KeyInfo>
         <xenc:CipherData>

<xenc:CipherValue>s7quAENaOlnur3....</xenc:CipherValue>
         </xenc:CipherData>

<xenc:CarriedKeyName>SYSKEY-1152718774975</xenc:CarriedKeyName>
      </xenc:EncryptedKey>
      <xenc:EncryptedData>
         <xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
         <ds:KeyInfo>
            <ds:KeyName>SYSKEY-1152718774975</ds:KeyName>
         </ds:KeyInfo>
         <xenc:CipherData>
            <xenc:CipherReference
URI="urn:hypersuite:63663F3E-C0A8027A01627C16-1CA0489B"/>
         </xenc:CipherData>
      </xenc:EncryptedData>
   </edoc:EncryptionBlock>


VERSION 1.4:

   <edoc:EncryptionBlock id="Revision-1-Encryption-1"
xmlns="http://www.w3.org/2000/09/xmldsig#";
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#";>

<edoc:EncryptionDate>2006-07-12T16:40:56</edoc:EncryptionDate>
      <edoc:Encryptor>IMTF Hypersuite Capture Server</edoc:Encryptor>
      <xenc:EncryptedKey>
         <xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/>
         <KeyInfo>
            <KeyName>TestDMO</KeyName>
         </KeyInfo>
         <xenc:CipherData>

<xenc:CipherValue>Af97+MWWWzxXqLocfm/xzu......</xenc:CipherValue>
         </xenc:CipherData>

<xenc:CarriedKeyName>SYSKEY-1152714533719</xenc:CarriedKeyName>
      </xenc:EncryptedKey>
      <xenc:EncryptedData>
         <xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
         <KeyInfo>
            <KeyName>SYSKEY-1152714533719</KeyName>
         </KeyInfo>
         <xenc:CipherData>
            <xenc:CipherReference
URI="urn:hypersuite:632EF16A-0A024301000C74FE-C69D3102"/>
         </xenc:CipherData>
      </xenc:EncryptedData>
   </edoc:EncryptionBlock>





--
http://r-bg.com

Reply via email to